CompTIA CASP+ Practice Test

In a network with multiple security zones, where is the best location to place other security equipment?

• A. A NIPS on the switch in Zone C, an antivirus server in Zone A, and a patch server in Zone B
• B. A NIDS on the switch in Zone C, a WAF in Zone A, and a firewall in Zone B
• C. A firewall in Zone C, an antivirus in Zone A, and a patch server in Zone B
• D. A load balancer in Zone C, a WAF in Zone A, and a firewall in Zone B

The correct answer is: A NIPS on the switch in Zone C, an antivirus server in Zone A, and a patch server in Zone B

In a network with multiple security zones, it's essential to strategically place security equipment to effectively manage and mitigate threats across different areas. The correct answer suggests placing a Network Intrusion Prevention System (NIPS) on the switch in Zone C, an antivirus server in Zone A, and a patch server in Zone B. This distribution is effective because each piece of equipment addresses specific security needs in highly relevant areas. The NIPS in Zone C can monitor and actively prevent attacks on traffic flowing through this portion of the network, providing immediate defense mechanisms. By placing the antivirus server in Zone A, where potentially higher risks of malware could originate (like user workstations or external device connections), it ensures that threats are scanned and mitigated at the entry point. Meanwhile, having a patch server in Zone B is crucial for maintaining the security posture of the entire network, facilitating timely updates and vulnerability management across the organization's devices. The combination of these tools allows for a layered defense strategy. It ensures comprehensive coverage against various threats, effectively managing vulnerabilities and malwares at each critical point in the security architecture within the multiple security zones.